08-30-2024 12:28 PM
Hi All,
I am integrating DNAC with ISE for external authentication and has setup all the policy and TACACS AVPair for Super admin, Network Admin and Observer but still unable to login vi active directory user credentials. On DNAC under system 360 i can see external auth servers show green checks showing connected and active, but on the ISE node under PXGRID shows offline (XMPP). I tried removing pxgrid and adding it again from DNAC but still it shows same behavior as offline.
Regards,
Talha
Solved! Go to Solution.
08-30-2024 12:55 PM
This video can be helpful for you.
08-30-2024 12:55 PM
09-04-2024 08:58 AM
When you try logging in what do the logs in ISE say? Are you getting a success in ISE but not being allowed to log in to DNAC?
I had a similar issue and I ended up having to create a new Authz profile specifically for DNAC, we have our main Authz profile that has several AVPair attributes that work for various devices but DNAC denied access when any other AVPair attributes were present in the Authz response.
our DNAC specific profile looks like this
Outside of that it is set up like any other network device we have.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide